https://pulumi.com logo
#general
Title
# general
r

rapid-raincoat-36492

01/25/2022, 4:29 AM
What's the best way in Pulumi to manage internal TLS certificates for something like Vault? https://www.pulumi.com/registry/packages/command/ looks promising, but I'm not sure if there's a more standard way
b

bored-table-20691

01/25/2022, 4:36 AM
You can use the tls package
l

little-cartoon-10569

01/25/2022, 4:56 AM
What's the goal? The TLS package allows you create certificates, but for storing them in a vault, I think you'll need the command package? I don't think the various vault providers provide a way to use a vault, just to create one?
r

rapid-raincoat-36492

01/25/2022, 5:22 AM
We manage a private CA and create certs for: • our Vault clusters, which have their own SSL certs on the servers • our local development, where we point localhost to a domain name with SSL Last I checked in terraform-land the TLS provider didn't have support for some of the more recent TLS ciphers, but I'll gladly check again, thank you for the reminder Itay
b

bored-table-20691

01/25/2022, 5:33 AM
Yes, apologies if I jumped the gun with the recommendation without asking more about the use case 🙂
4 Views